Vulnerability Details CVE-2003-0712
Cross-site scripting (XSS) vulnerability in the HTML encoding for the Compose New Message form in Microsoft Exchange Server 5.5 Outlook Web Access (OWA) allows remote attackers to execute arbitrary web script.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.247
EPSS Ranking 95.8%
CVSS Severity
CVSS v2 Score 4.3
References
- http://marc.info/?l=bugtraq&m=106631918405915&w=2
- http://www.cert.org/advisories/CA-2003-27.html
- http://www.kb.cert.org/vuls/id/435444
- http://www.securityfocus.com/bid/8832
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-047
- http://marc.info/?l=bugtraq&m=106631918405915&w=2
- http://www.cert.org/advisories/CA-2003-27.html
- http://www.kb.cert.org/vuls/id/435444
- http://www.securityfocus.com/bid/8832
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-047
Products affected by CVE-2003-0712
-
cpe:2.3:a:microsoft:exchange_server:5.5